Eventually Yahoo decided to inform service users about the size of recent violations and leaks.
The first hack apparently took place in August 2013 where names, email addresses, phone numbers, birth dates, fragmented passwords (with MD5) and some encrypted or unencrypted security questions and answers were leaked.
The company has not reported passwords in plain text format and credit card payment details.
Yahoo states addressed to users affected and that “it has taken steps to secure their accounts and requires users to change their passwords.”
Also, Yahoo admitted that this hack is different from the breach and leakage of 500 million accounts revealed in September this year.
However, the company claimed the responsibles are the same hackers who carried out the first violation.
If you have an accounts in Yahoo, you should change your password immediately, or subscribe to the company’s authentication service.
Find out how to protect yourself and business at: http://cyber.aspida.org